Vulnerability Remediation

From Lingoport Wiki
Revision as of 20:35, 11 December 2021 by Masnes (talk | contribs) (Created page with "= Lingoport's Response to Major Software Vulnerabilities = == Apache Log4j Security Vulnerabilities == A major security vulnerability allowing for remote code execution on a...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Lingoport's Response to Major Software Vulnerabilities

Apache Log4j Security Vulnerabilities

A major security vulnerability allowing for remote code execution on affected systems.

See: https://logging.apache.org/log4j/2.x/security.html

Lingoport Response

Pending further action, Lingoport has shut down all non-critical systems.

Critical systems have been patched to remove all copies of log4j 2.x with log4j 2.15 followed by a hard reboot.

For Lingoport Clients

The below scripts may be used in conjunction to replace all log4j 2.x with log4j 2.15.

1. Retrieve log4j 2.15: 

cd /tmp/
curl -O https://dlcdn.apache.org/logging/log4j/2.15.0/apache-log4j-2.15.0-bin.zip 
unzip apache-log4j-2.15.0-bin.zip

2. Replace other log4j instances on your system with 2.15

The following script will make a global replacement of all vulnerable log4j libraries with 2.15. It targets all files in

Retrieved from "http://wiki.lingoport.com/index.php?title=Vulnerability_Remediation&oldid=95724"